Debian Security Advisory 1184-1: Several security related problems have been discovered in the Linux kernel which may lead to a denial of service or even the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:
799b73182cd6e5ee3bb6eda6525bd22cba6be99b8731e039bb2255d59682907fDebian Security Advisory 1183-1: Several security related problems have been discovered in the Linux kernel which may lead to a denial of service or even the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:
2faa9a072bfc51aea394c6ead17fd2f5a173df0362e669e5cadf46b8acec555eDebian Security Advisory 1184-2: kernel-source-2.6.8 - This advisory covers the S/390 components of the recent security update for the Linux 2.6.8 kernel that was missing due to technical problems. For reference below please see the original advisory text.
1c3601bd0c15b034cc1a82a45342e1e3a41e312c008209c84ae5c091bca914eeFreeBSD Security Advisory - Multiple vulnerabilities exist in gzip.
40bd13cb8cb2081691ce02d2adabac8a542bd62b8d47fd3c4d05236d29b0cb78rfdslabs security advisory: RLSA_02-2006 - OSU httpd for OpenVMS suffers from full path and directory content disclosure.
16de47fd65bebc0e046d055c8c96b19a4810c54a3c3841c748cc09991dca61c8PT News 1.7.8 suffers from cross site scripting in search.php
d3cd807a73eac4fb5ec22ad458c9791d1544cd616169a82a734fd90e9ae008c7Kurdish Security Advisory #27: artmedic links 5.0 remote file inclusion vulnerability.
f977e352a3a6cf456a6af7414bfd3261fc0baecb4d39b961d5720daf6d643ecaNextAge Cart suffers from a cross site scripting vulnerability.
0184a14b97b555de5fddecb7459888d3cea17928d82b3a9db66ffa2d2c35b87fMandriva Linux Security Advisory MDKSA-2006-165: A flaw was discovered in how Mailman handles MIME multipart messages where an attacker could send a carefully-crafted MIME multipart message to a Mailman-run mailing list causing that mailing list to stop working (CVE-2006-2941).
7a7031896bfb45a8f955ac0627054b8ebf2c1d9fa771ef2593d45760a28f1982Mandriva Linux Security Advisory MDKSA-2006-168: A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.7.
31d71e2e18dbdc0b5a7de963719093d5861eeeccd537e163120fb4291e2383b7Mandriva Linux Security Advisory MDKSA-2006-166: verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.
888312d8cc44034b9dd59a4bbfd834f628216fac1bb96ab9f75492a6be1d1791Mandriva Linux Security Advisory MDKSA-2006-167: Multiple problems with gzip.
2353d9ebf00449c3c3a4ea8f73dd86c064d0bebe534d045dcfe525c941cf802eGentoo Linux Security Advisory GLSA 200609-12 - Mailman fails to properly handle standards-breaking RFC 2231 formatted headers. Furthermore, Moritz Naumann discovered several XSS vulnerabilities and a log file injection. Versions less than 2.1.9_rc1 are affected.
9d4ad5cc18161edea49563eb06d62383b7b3a0d3c92b0e2bb56b1b5cbe4d58cbUbuntu Security Notice 350-1: mozilla-thunderbird vulnerabilities
0924bf755157bfc2ebfc04cf25a19f9b8686cc3dd9131cc2bd470c7d35cc2850Debian Security Advisory 1182-1: Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid.
1c9540dc61937fe29db3ce4801c3ce875e75c35c5602775a6da3046a874711ccDebian Security Advisory 1181-1: Tavis Ormandy from the Google Security Team discovered several vulnerabilities in gzip, the GNU compression utility.
0f7c9e5cdbbc68329b6e1a39b343dc91600692413802d961fea296f2a4c523a1Debian Security Advisory 1180-1: Luigi Auriemma discovered two security related bugs in bomberclone, a free Bomberman clone.
7d71d174488c29369572a9430039346ccab43fce0196fb654203908b3bd8a367Debian Security Advisory 1179-1: Luigi Auriemma discovered several buffer overflows in alsaplayer, a PCM player designed for ALSA, that can lead to a crash of the application and possibly other outcomes.
710aba9cc909e36a80d036a76d4c1acf603e4776571387e5271b2869b5a552b3Debian Security Advisory 1178-1: It was discovered that an integer overflow in freetype's PCF font code may lead to denial of service and potential execution of arbitrary code.
577f6b50cca688ea1b6ba14e41c7adb0e36ace2c8a347424302c6bbc056eb16eDebian Security Advisory 1178-1: It was discovered that an integer overflow in freetype's PCF font code may lead to denial of service and potential execution of arbitrary code.
577f6b50cca688ea1b6ba14e41c7adb0e36ace2c8a347424302c6bbc056eb16eSecunia Security Advisory - h07 has discovered a vulnerability in WS_FTP LE, which can be exploited by malicious people to compromise a vulnerable system.
4935ae795f2452dc84cc8fe8fe493072ff64b6087e6abf756769845b1c17a677Secunia Security Advisory - Some vulnerabilities have been discovered in e-Vision CMS, which can be exploited by malicious people to conduct SQL injection attacks and to compromise a vulnerable system.
0c20530fbb0a032dcc8b66d447249baa6aed01f1b990bcc8bf26d528e7193362Secunia Security Advisory - HACKERS PAL has reported some vulnerabilities in BandSite CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
8ef4b46d39334ed2db1f13466d98ece4baa41a40145cf8e6033ad630dc83bc84Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
678aa63398936ab1b58e85a34523bb0fffbea60a00772b7a040649f7545344eeSecunia Security Advisory - SUSE has issued updates for openssl and mozilla-nss. These fix some vulnerabilities, which potentially can be exploited by malicious people to bypass certain security restrictions.
67005f68194b8b35c437700f21ffa1748363cbdcf5680ea76de579486cfa82fa
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed